This section covers the account and settings options available in ShadowTrackr. You can manage these from the
Settings page.
Vulnerability scanners sometimes flag CVEs that aren't actually exploitable on your systems. ShadowTrackr gives you tools to suppress these findings and automatically handles common false positives for patched OpenSSH and old TLS/SSL vulnerabilities.
Read more about managing false positives →ShadowTrackr supports multiple users per organization, each with a role that controls what they can see and do — from full group administration to read-only access.
Read more about user management →If you use a private Certificate Authority (for example for test environments), you can tell ShadowTrackr to ignore trust issues for that CA so they don't clutter your reports.
Read more about custom CAs →ShadowTrackr checks standard DKIM selectors by default. If your organization uses custom selectors, add them in your settings so ShadowTrackr can verify your DKIM configuration.
Read more about custom DKIM selectors →If Microsoft serves its own certificates on subdomains like lyncdiscover or sip, ShadowTrackr will flag the domain mismatch. You can tell ShadowTrackr to stop treating these as problems.
Read more about Microsoft Office 365 certificates →Control how ShadowTrackr discovers and adds new assets, including whether newly found subdomains are automatically added to your inventory.
Read more about discovery settings →